"CISA warns 2 SonicWall vulnerabilities under active exploitation."

Views expressed in this cybersecurity, cyber crime update are those of the reporters and correspondents.  Accessed on 11 May 2025, 1338 UTC.

Content and Source:  "Dark Reading."

https://feedly.com/i/subscription/feed%2Fhttp%3A%2F%2Fwww.darkreading.com%2Frss%2Fall.xml

Please check email link or scroll down to read your selections.  Thanks for joining us today.

Russ Roberts (https://www.hawaiicybersecurityjournal.net).

Dark Reading

168K followers33 articles per week

#security#tech

35

Most popular

CISA Warns 2 SonicWall Vulnerabilities Under Active Exploitation

by Kristina Beek, Associate Editor, Dark Reading / 4d

The vulnerabilities affect SonicWall's SMA devices for secure remote access, which have been heavily targeted by threat actors in the past.

Commvault: Vulnerability Patch Works as Intended

CVE-2025-34028

•

by Jai Vijayan, Contributing Writer / 1d

The security researcher who questioned the effectiveness of a patch for recently disclosed bug in Commvault Command Center did not test patched version, the company says.

How Security Has Changed the Hacker Marketplace

by Isaac Evans / 2d

Your ultimate goal shouldn't be security perfection — it should be making exploitation of your organization unprofitable.

May 9, 2025

After Pahalgam Attack, Hacktivists Unite Under #OpIndia

Hacktivist groups target India cyberattacks

•

by Nate Nelson, Contributing Writer / 1d

Cybercriminals are flocking to take part in the newly inflamed fight between India and Pakistan.

Rapid7 Launches Managed Detection & Response (MDR) for Enterprise

1d

[no content]

LockBit Ransomware Gang Hacked, Operations Data Leaked

4 TTPs

•

by Rob Wright / 1d

•

LockBit ransomware gang hacked database exposed

Exposed data from LockBit's affiliate panel includes Bitcoin addresses, private chats with victim organizations, and user information such as credentials.

Cyber Then & Now: Inside a 2-Decade Industry Evolution

by Tara Seals / 1d

On Dark Reading's 19-year anniversary, Editor-in-Chief Kelly Jackson Higgins stops by Informa TechTarget's RSAC 2025 Broadcast Alley studio to discuss how things have changed since the early days of breaking Windows and browsers, lingering challenges, and what's next beyond AI.

Insight Partners Data Breach: Bigger Impact Than Anticipated

Insight Partners data breach confirmed

•

by Kristina Beek, Associate Editor, Dark Reading / 1d

The investigation is ongoing, but the VC giant intends to inform affected customers on a rolling basis as more of the breach details come to light.

May 8, 2025

SonicWall Issues Patch for Exploit Chain in SMA Devices

by Nate Nelson, Contributing Writer / 2d

Three vulnerabilities in SMA 100 gateways could facilitate root RCE attacks, and one of the vulnerabilities has already been exploited in the wild.

Email-Based Attacks Top Cyber-Insurance Claims

Ransomware claims stabilize but costly

•

by Rob Wright / 2d

Cyber-insurance carrier Coalition said business email compromise and funds transfer fraud accounted for 60% of claims in 2024.

Operation PowerOFF Takes Down 9 DDoS-for-Hire Domains

2 TTPs

•

by Kristina Beek, Associate Editor, Dark Reading / 2d

Four different countries, including the United States and Germany, were included in the latest international operation alongside Europol's support.

Life Without CVEs? It's Time to Act

CVE program funding at risk

•

by Keith Ibarguen / 2d

Despite all MITRE has done for cybersecurity, it is clear we should not wait 11 months to discuss the future of the CVE database. It's simply too important for that.

Countries Begin NATO's Locked Shields Cyber-Defense Exercise

NATO Locked Shields 2025 cyber exercise

•

by Arielle Waldman / 3d

The 15th annual event helps countries test and develop defenses against current and emerging cyber threats, including disinformation, quantum computing, and AI.

AI Agents Fail in Novel Ways, Put Businesses at Risk

by Robert Lemos, Contributing Writer / 3d

Microsoft researchers identify 10 new potential pitfalls for companies that are developing or deploying agentic AI systems, with failures potentially leading to the AI becoming a malicious insider.

May 7, 2025

'Lemon Sandstorm' Underscores Risks to Middle East Infrastructure

11 TTPs

•

by Robert Lemos, Contributing Writer / 3d

•

Lemon Sandstorm targets Middle East infrastructure

The Iranian state-backed group targeted the operational technology of a critical national infrastructure (CNI) network and persisted in its network for years, but ultimately failed.

'CoGUI' Phishing Kit Helps Chinese Hackers Target Japan

7 TTPs

•

by Nate Nelson, Contributing Writer / 3d

•

CoGUI phishing kit targets Japan

Japan is being peppered with an overwhelming volume of spam, thanks to a new platform popular across the East China Sea.

TikTok Fined €530 Million Over Chinese Access to EU Data

TikTok fined for EU data violations

•

by Becky Bracken / 3d

European regulators sent an unmistakable message about messing around with GDPR-protected data. How can organizations avoid similar compliance hassles?

Meta Wins Lawsuit Against Spyware Vendor NSO Group

2 TTPs

•

by Kristina Beek, Associate Editor, Dark Reading / 3d

The spyware company must pay the tech giant $168 million in punitive and compensatory damages after a 2019 attack targeting 1,400 devices.

Play Ransomware Group Used Windows Zero-Day

14 TTPs

•

by Jai Vijayan, Contributing Writer / 3d

Previously, Microsoft reported that Storm-2460 had also used the privilege escalation bug to deploy ransomware on organizations in several countries.

'Bring Your Own Installer' Attack Targets SentinelOne EDR

2 TTPs

•

by Alexander Culafi, Senior News Writer, Dark Reading / 3d

•

BYOI bypasses SentinelOne EDR

Researchers from Aon's Stroz Friedberg incident response firm discovered a new attack type, known as "Bring Your Own Installer," targeting misconfigured SentinelOne EDR installs.

Infrastructure as Code: An IaC Guide to Cloud Security

by Jatin Mannepalli / 3d

IaC is powerful. It brings speed, scale, and structure to cloud infrastructure. But none of that matters if your security can't keep up.

May 6, 2025

Researcher Says Patched Commvault Bug Still Exploitable

5 TTPs

•

by Jai Vijayan, Contributing Writer / 4d

CISA added CVE-2025-34028 to its Known Exploited Vulnerabilities catalog, citing active attacks in the wild.

'Easily Exploitable' Langflow Vulnerability Requires Immediate Patching

4 TTPs

•

by Kristina Beek, Associate Editor, Dark Reading / 4d

The vulnerability, which has a CVSS score of 9.8, is under attack and allows threat actors to remotely execute arbitrary commands on servers running the agentic AI builder.

Addressing the Top Cyber-Risks in Higher Education

by Michael Sink / 4d

As attacks accelerate, security leaders must act to gain visibility across their entire institution's network and systems and continuously educate their users on best practices.

Ongoing Passkey Usability Challenges Require 'Problem-Solving'

by Arielle Waldman / 5d

While passkeys offer enhanced security against phishing and credential theft, implementation hurdles, cross-platform inconsistencies, and user experience challenges pose significant barriers to widespread adoption.

The Dark Side of Digital: Breaking the Silence on Youth Mental Health

by Arielle Waldman / 5d

Industry experts at RSAC 2025 called for urgent accountability in addressing technology's negative impact on youth, highlighting concerns about Internet anonymity, mental health, and the growing disconnect between generations.

May 5, 2025

AI Domination: RSAC 2025 Social Media Roundup

Anomali and SentinelOne launch agentic AI

•

by Kristina Beek, Associate Editor, Dark Reading / 5d

Documented in a series of social media posts, cybersecurity experts shared with Dark Reading their insights on RSAC 2025 throughout the week.

'Venom Spider' Targets Hiring Managers in Phishing Scheme

16 TTPs

•

by Alexander Culafi, Senior News Writer, Dark Reading / 5d

•

Venom Spider targets HR with malware

Researchers from Arctic Wolf Labs detailed a new spear-phishing campaign that targets hiring managers and recruiters by posing as a job seeker.

Phony Hacktivist Pleads Guilty to Disney Data Leak

2 TTPs

•

by Kristina Beek, Associate Editor, Dark Reading / 5d

•

Man pleads guilty to Disney hack

After stealing sensitive data from Disney, Ryan Mitchell Kramer claimed to be part of a Russian hacktivist group protecting artists' rights and ensuring they receive fair compensation for their work.

How to Prevent AI Agents From Becoming the Bad Guys

by Marla Hay / 5d

When designed with strong governance principles, AI can drive innovation while maintaining the people's trust and security.

May 2, 2025

UK Retailers Reeling From Likely Ransomware Attacks

2 TTPs

•

by Alexander Culafi, Senior News Writer, Dark Reading / 8d

•

Co-op shuts down IT after cyberattack

A series of cyberattacks have struck multiple major British retailers in recent weeks, and a ransomware gang has reportedly claimed responsibility.

What NY's New Security Rules Mean for Finance Firms

by Nate Nelson, Contributing Writer / 8d

According to the New York Department of Financial Services, finance companies operating in New York — even if not based there — must implement a variety of protections against unauthorized access to IT systems.

Attackers Ramp Up Efforts Targeting Developer Secrets

Surge in Git file scanning

•

by Robert Lemos, Contributing Writer / 8d

Software teams need to follow security best practices to eliminate the leak of secrets, as threat actors increase their scanning for configuration and repository files.

Despite Arrests, Scattered Spider Continues High-Profile Hacking

8 TTPs

•

27by Rob Wright / 8d

•

DragonForce ransomware attacks UK retailers

While law enforcement has identified and arrested several alleged members, the notorious threat group continues to wreak havoc.

Cut CISA and Everyone Pays for It

by Audian Paxson / 8d

Gutting CISA won't just lose us a partner. It will lose us momentum. And in this game, that's when things break.

End of feed